IT Security Engineer
Closing date: 30 April 2026
West Midlands Ambulance Service University NHS Foundation Trust is looking for an experienced IT Security Engineer to join our team. The successful candidate will be responsible for implementing and developing the Trust’s IT Security policy and shaping its long‑term patching cycle, ensuring seamless delivery of IT services.
Job Responsibilities
* Implement and develop the Trust’s IT Security policy, shaping the long‑term IT patching cycle.
* Assist in translating the Trust’s long‑term strategic plans and policies into operational activity and provide continuous quality improvement feedback.
* Maintain awareness of evolving IT security standards and innovations, exploiting opportunities under the guidance of the Head of IT Security.
* Support services to agreed levels by participating in the on‑call rota and attending on‑site remedial or planned activities.
* Act as an authority on IT security procedures and provide specialist knowledge across the Trust.
* Work with stakeholders to define and agree service levels and manage downtime during patch management.
* Conduct risk assessments, identify, record and manage IT security risks, and report to senior management.
* Coordinate with external or third parties to maintain the Trust’s security stance during patching activities.
* Provide specialist guidance on procurement of new solutions to comply with the Trust’s IT security strategy.
* Collaborate with the Heads of IT Services to ensure systems are affordable and cost‑effective.
* Promote effective use of IT systems, develop IT security awareness and culture.
* Manage and maintain complex IT security systems and services, advising on future technologies.
* Engage in continuous professional development, training and courses.
* Deliver briefings on developments in your specialist field.
* Co‑operate with the Head of IT Security on investigations, projects, incident response planning and computer emergency response.
* Travel to other Trust sites as required.
Qualifications
* Recognised IT security qualification such as CISMP, CISSP or CASP (or evidence of being on the way to obtain one).
* Substantial experience in an IT role with a security focus, including vulnerability, risk and threat management.
Professional Experience & Knowledge
* Familiarity with security technologies from multiple vendors (e.g., Tenable Nessus, Microsoft XDR, Forcepoint Web).
* Knowledge of NHS IT systems and services (desirable).
* Current knowledge of latest cyber threats and mitigation.
* Experience with hardening infrastructure systems on‑premise and in the cloud.
* Experience with patch management methodologies and Microsoft cloud technologies (Exchange, Azure, Intune, SharePoint, Teams).
Skills and Personal Attributes
* Full UK driving licence.
* Strong analytical and judgmental skills, able to fault‑find and investigate security issues.
* Self‑motivated, confident and able to work in a team.
* Strong prioritisation and ability to act under pressure.
Other Information
On‑call rota: 1 in 3, with an additional 9.5% on‑call allowance. The role may require attendance on Trust sites across the West Midlands on short notice.
Travel to other Trust sites may be required; own vehicle and a clean UK driving licence are required. Mileage expense available where appropriate.
Competitive salary: £39,959 – £48,117 per year plus relevant unsocial hours and on‑call allowance.
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and will require a Disclosure and Barring Service check. Applicants are required to cover the cost of the check.
West Midlands Ambulance Service University NHS Foundation Trust is committed to equality, diversity and inclusion. We welcome applications from all backgrounds.
#J-18808-Ljbffr